Romain Naour [Thu, 12 Nov 2020 23:20:52 +0000 (00:20 +0100)]
toolchain/toolchain-buildroot: only riscv64 is supported by uClibc-ng
The commit [1] enabled riscv32 and riscv64 for uClibc-ng
internal toolchain backend but only riscv64 is curently
supported by uClibc-ng.
The initial patch [2] from Mark Corbin is only about riscv64.
Remove riscv32 from uClibc-ng supported architecture list.
Fixes:
https://gitlab.com/buildroot.org/buildroot/-/jobs/
830981656
[1]
209a082478fca143394512bb9a6c0822f12cfe2c
[2]
bd9810e176273914eca1208bcba23f0de9e446b3
Signed-off-by: Romain Naour <romain.naour@gmail.com>
Cc: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Thu, 12 Nov 2020 20:22:02 +0000 (21:22 +0100)]
package/suricata: link with libatomic if needed
Fix build of suricata 6.0.0 with mips32r6
app-layer-ftp.o: In function `FTPCheckMemcap':
app-layer-ftp.c:(.text+0x284): undefined reference to `__atomic_load_8'
app-layer-ftp.c:(.text+0x2d8): undefined reference to `__atomic_fetch_add_8'
Fixes:
- http://autobuild.buildroot.org/results/
f574005204905250702df32b61c85d427ab4feda
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Bartosz Bilas [Fri, 13 Nov 2020 11:39:40 +0000 (12:39 +0100)]
package/rauc: prevent occurring the error when directory exists
Add -p argument that ignore that specified directory already exists.
Fixes:
mkdir: cannot create directory ‘/home/bartekk/buildroot-2020.11-rc1/output/target/usr/lib/systemd/system/rauc.service.d’: File exists
Signed-off-by: Bartosz Bilas <b.bilas@grinn-global.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Peter Korsgaard [Fri, 13 Nov 2020 10:31:11 +0000 (11:31 +0100)]
package/go: security bump to 1.15.5
Fixes the following security issues:
- math/big: panic during recursive division of very large numbers
A number of math/big.Int methods (Div, Exp, DivMod, Quo, Rem, QuoRem, Mod,
ModInverse, ModSqrt, Jacobi, and GCD) can panic when provided crafted
large inputs. For the panic to happen, the divisor or modulo argument
must be larger than 3168 bits (on 32-bit architectures) or 6336 bits (on
64-bit architectures). Multiple math/big.Rat methods are similarly affected.
crypto/rsa.VerifyPSS, crypto/rsa.VerifyPKCS1v15, and crypto/dsa.Verify may
panic when provided crafted public keys and signatures. crypto/ecdsa and
crypto/elliptic operations may only be affected if custom CurveParams with
unusually large field sizes (several times larger than the largest
supported curve, P-521) are in use. Using crypto/x509.Verify on a crafted
X.509 certificate chain can lead to a panic, even if the certificates
don’t chain to a trusted root. The chain can be delivered via a
crypto/tls connection to a client, or to a server that accepts and
verifies client certificates. net/http clients can be made to crash by an
HTTPS server, while net/http servers that accept client certificates will
recover the panic and are unaffected.
Moreover, an application might crash invoking
crypto/x509.(*CertificateRequest).CheckSignature on an X.509 certificate
request or during a golang.org/x/crypto/otr conversation. Parsing a
golang.org/x/crypto/openpgp Entity or verifying a signature may crash.
Finally, a golang.org/x/crypto/ssh client can panic due to a malformed
host key, while a server could panic if either PublicKeyCallback accepts a
malformed public key, or if IsUserAuthority accepts a certificate with a
malformed public key.
Thanks to the Go Ethereum team and the OSS-Fuzz project for reporting
this. Thanks to Rémy Oudompheng and Robert Griesemer for their help
developing and validating the fix.
This issue is CVE-2020-28362 and Go issue golang.org/issue/42552.
- cmd/go: arbitrary code execution at build time through cgo
The go command may execute arbitrary code at build time when cgo is in
use. This may occur when running go get on a malicious package, or any
other command that builds untrusted code.
This can be caused by malicious gcc flags specified via a #cgo directive,
or by a malicious symbol name in a linked object file.
Thanks to Imre Rad and to Chris Brown and Tempus Ex respectively for
reporting these issues.
These issues are CVE-2020-28367 and CVE-2020-28366, and Go issues
golang.org/issue/42556 and golang.org/issue/42559 respectively.
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Peter Korsgaard [Fri, 13 Nov 2020 10:01:23 +0000 (11:01 +0100)]
package/wireguard-linux-compat: bump version to 1.0.
20201112
Fixes a build issue with linux 5.4.76+. For details, see the announcement:
https://lists.zx2c4.com/pipermail/wireguard/2020-November/005997.html
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Peter Korsgaard [Fri, 13 Nov 2020 08:33:20 +0000 (09:33 +0100)]
{linux, linux-headers}: bump 4.{4, 9, 14, 19}.x / 5.{4, 9}.x series
Including the fix for CVE-2020-8694:
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00389.html
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Bernd Kuhls [Fri, 13 Nov 2020 06:24:50 +0000 (07:24 +0100)]
package/tor: security bump version to 0.4.4.6
Release notes: https://blog.torproject.org/node/1952
Fixes TROVE-2020-005.
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Romain Naour [Sun, 31 May 2020 14:34:52 +0000 (16:34 +0200)]
configs/rock64_defconfig: remove defconfig
The rock64 defconfig is currently broken [1][2] since a while due to
incompatibility between uboot-2017.09-rockchip-ayufan fork and pylibfdt.
Even with the latest uboot-2017.09-rockchip-ayufan fork version [3],
it doesn't build.
The original submitter tried the uboot upstream rock64-rk3328_defconfig
but the board doesn't boot [4].
In order to not release 2020.05 with a broken defconfig, let's remove
it. It can be re-added later once the uboot issue has been resolved.
[1] 2020.05-rc2: https://gitlab.com/buildroot.org/buildroot/-/jobs/
563613273
[2] 2020.02: https://gitlab.com/buildroot.org/buildroot/-/jobs/
548596102
[3] https://github.com/ayufan-rock64/linux-u-boot/releases/tag/
2017.09-rockchip-ayufan-1065-g95f6152134
[4] http://lists.busybox.net/pipermail/buildroot/2020-May/282164.html
Signed-off-by: Romain Naour <romain.naour@gmail.com>
Cc: Michał Łyszczek <michal.lyszczek@bofc.pl>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Romain Naour [Wed, 11 Nov 2020 23:34:29 +0000 (00:34 +0100)]
package/python-lmdb: bump to version 0.99
This version fix the runtime issue with python 3.9 since _Py_ForgetReference()
was removed from the limited C API [1].
$ python sample_python_crossbar.py
/usr/bin/python3.9: symbol '_Py_ForgetReference': can't resolve symbol
python-lmbd 0.99 contain a refactoring removing _Py_ForgetReference()
from the code.
Fixes:
https://gitlab.com/buildroot.org/buildroot/-/jobs/
830981961
https://gitlab.com/buildroot.org/buildroot/-/jobs/
830981979
[1] https://docs.python.org/3/whatsnew/3.9.html#id3
[2] https://github.com/jnwatson/py-lmdb/commit/
22a3724bdcda62853e8a250094f512eb20abe01f
Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Romain Naour [Wed, 11 Nov 2020 23:34:28 +0000 (00:34 +0100)]
package/python3: uClibc-ng doesn't set errno when encryption method is not available
Since commit [1] in cpython, an exception is raised when an encryption method
is not available. This eception is handled only if errno is set to EINVAL by
crypt() but uClibc-ng doesn't set errno in crypt() [2].
Fixes:
https://gitlab.com/buildroot.org/buildroot/-/jobs/
830981961
https://gitlab.com/buildroot.org/buildroot/-/jobs/
830981979
[1] https://github.com/python/cpython/commit/
0d3fe8ae4961bf551e7d5e42559e2ede1a08fd7c
[2] https://cgit.uclibc-ng.org/cgi/cgit/uclibc-ng.git/tree/libcrypt/crypt.c?h=v1.0.36#n29
Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Peter Seiderer [Tue, 10 Nov 2020 22:16:29 +0000 (23:16 +0100)]
package/wpewebkit: fix compile without video support
Fixes:
- https://bugs.busybox.net/show_bug.cgi?id=13306
.../wpewebkit-2.30.2/Source/WebKit/WebProcess/InjectedBundle/InjectedBundle.cpp:242:30: error: ‘class WebCore::Settings’ has no member named ‘setGenericCueAPIEnabled’; did you mean ‘setBeaconAPIEnabled’?
page->settings().setGenericCueAPIEnabled(enabled);
^~~~~~~~~~~~~~~~~~~~~~~
setBeaconAPIEnabled
Signed-off-by: Peter Seiderer <ps.report@gmx.net>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Julien Olivain [Thu, 12 Nov 2020 12:01:54 +0000 (13:01 +0100)]
package/linux-backports: use flex and bison to generate kconfig parser
Upstream backports package does not define the LEX/YACC Makefile
variables, contrary to the Kernel which is defining those in [1]. The
default "lex" and "yacc" are then used. On some systems, "yacc" is
Berkeley Yacc. Kconfig parser files are using non-Posix Bison
constructs.
Attempting to generate the parser with byacc fails with error:
yacc: e - line 97 of "zconf.y", syntax error
%destructor {
^
This patch defines the LEX and YACC Makefile variable to use flex and
bison, to fix this issue. The host-bison and host-flex dependencies are
added only if the host does not have them, following the same logic of
the Kernel.
[1] https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=
73a4f6dbe70a1b93c11e2d1d6ca68f3522daf434
Signed-off-by: Julien Olivain <ju.o@free.fr>
Reviewed-by: Petr Vorel <petr.vorel@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Klaus Heinrich Kiwi [Thu, 12 Nov 2020 16:48:44 +0000 (13:48 -0300)]
package/busybox: Fix hwclock for glibc 2.31+
Pick the below patch from upstream, in order to fix
'settimeofday: Invalid argument' introduced by using glibc v2.31+.
(busybox hasn't tagged a new version since).
See https://bugs.busybox.net/show_bug.cgi?id=12756 for more info.
Signed-off-by: Klaus Heinrich Kiwi <klaus@linux.vnet.ibm.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Peter Korsgaard [Thu, 12 Nov 2020 12:44:08 +0000 (13:44 +0100)]
package/asterisk: security bump to version 16.14.1
Fixes the following security issues:
- AST-2020-001: Remote crash in res_pjsip_session
Upon receiving a new SIP Invite, Asterisk did not return the created
dialog locked or referenced.
- AST-2020-002: Outbound INVITE loop on challenge with different nonce
If Asterisk is challenged on an outbound INVITE and the nonce is changed
in each response, Asterisk will continually send INVITEs in a loop. This
causes Asterisk to consume more and more memory since the transaction will
never terminate (even if the call is hung up), ultimately leading to a
restart or shutdown of Asterisk. Outbound authentication must be
configured on the endpoint for this to occur.
For details, see the announcement:
https://www.asterisk.org/asterisk-news/asterisk-13-37-1-16-14-1-17-8-1-18-0-1-and-16-8-cert5-now-available-security/
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Stefan Agner [Thu, 12 Nov 2020 20:21:34 +0000 (21:21 +0100)]
package/apparmor: fix permission bits for apparmor.service
Avoid setting executable bits for apparmor.service. This gets rid of a
corresponding warning during installation:
Configuration file ../target/usr/lib/systemd/system/apparmor.service
is marked executable. Please remove executable permission bits.
Proceeding anyway.
Signed-off-by: Stefan Agner <stefan@agner.ch>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Thu, 12 Nov 2020 19:22:55 +0000 (20:22 +0100)]
package/waf: add license
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Thu, 12 Nov 2020 19:10:42 +0000 (20:10 +0100)]
package/fbset: add license file
Use fbset.c as the license file and, while at it, also update
indentation in hash file (two spaces)
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Thu, 12 Nov 2020 19:06:10 +0000 (20:06 +0100)]
package/bandwidthd: add license file
Use README as the license file until upstream provides one:
https://github.com/nroach44/bandwidthd/issues/2
While at it, also update indentation in hash file (two spaces)
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Thu, 12 Nov 2020 19:01:17 +0000 (20:01 +0100)]
package/argp-standalone: add license file
Use argp.h as the license file and, while at it, update indentation in
hash file
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Peter Korsgaard [Thu, 12 Nov 2020 09:21:45 +0000 (10:21 +0100)]
package/tmux: add upstream security fix for CVE-2020-27347
Fixes CVE-2020-27347: The function input_csi_dispatch_sgr_colon() in file
input.c contained a stack-based buffer-overflow that can be exploited by
terminal output.
For details, see:
https://www.openwall.com/lists/oss-security/2020/11/05/3
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Heiko Thiery [Wed, 11 Nov 2020 08:18:07 +0000 (09:18 +0100)]
package/libcap: fix regression for static linking issue
9c13e02c35c74eca56e69f2bbfde452b51860f5e already fixed the static linking
issue for host-libcap on some distros (e.g. on Fedora32 and openSUSE).
This regression was introduced by
8d38eb052e7006b6e74e9453351d7f245144481e.
An upstream patch [1] is added to address this problem [2].
Fixes:
Bug 13296
[1] https://git.kernel.org/pub/scm/libs/libcap/libcap.git/commit/?id=
9b1c003748d4df78416d50fce139f0875224440b
[2] https://bugzilla.kernel.org/show_bug.cgi?id=210135
Cc: Peter Seiderer <ps.report@gmx.net>
Cc: Dr I J Ormshaw <ian_ormshaw@waters.com>
Signed-off-by: Heiko Thiery <heiko.thiery@gmail.com>
Tested-by: Ian Ormshaw <ian_ormshaw@waters.com>
Tested-by: Peter Seiderer <ps.report@gmx.net>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Julien Olivain [Wed, 11 Nov 2020 15:46:37 +0000 (16:46 +0100)]
package/linux-firmware: Add new option for Qualcomm/Atheros 10k (QCA9377)
Initial Atheros ath10k QCA9377 support was introduced in Kernel v4.4
[1]. More recently, in v5.7 [2], the SDIO support was also added. This
patch adds a new option to install firmware files for this device.
[1] https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=
a226b519d43a2a6b37267fea051aacb4a79c9614
[2] https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=
6e51b0e4913ca2c93059f73ca477ca30ea95b6a0
Signed-off-by: Julien Olivain <ju.o@free.fr>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Thomas Petazzoni [Thu, 5 Nov 2020 16:30:23 +0000 (17:30 +0100)]
docs/manual: add some minimal documentation about show-info and pkg-stats
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Thomas Petazzoni [Thu, 5 Nov 2020 16:30:22 +0000 (17:30 +0100)]
Makefile: add pkg-stats target
Now that pkg-stats is not just a maintainer-oriented tool, but a tool
generally useful to users, introduce a make target to run
pkg-stats. Of course, it is run with the newly introduced -c option,
which produces a pkg-stats output for just the selection of packages
of the currently defined configuration.
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Thomas Petazzoni [Thu, 5 Nov 2020 16:30:21 +0000 (17:30 +0100)]
support/scripts/cve-checker: remove script
Now that pkg-stats is able to generate its output based on the list of
packages enabled in the current configuration, cve-checker doesn't
serve any purpose.
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Thomas Petazzoni [Thu, 5 Nov 2020 16:30:20 +0000 (17:30 +0100)]
support/scripts/pkg-stats: support generating stats based on configured packages
pkg-stats was initially a Buildroot maintenance oriented tool: it was
designed to examine all Buildroot packages and provide
statistics/details about them.
However, it turns out that a number of details provided by pkg-stats,
especially CVEs, are relevant also for Buildroot users, who would like
to check regularly if their specific Buildroot configuration is
affected by CVEs or not, and possibly check if all packages have
license information, license files, etc.
The cve-checker script was recently introduced to provide an output
relatively similar to pkg-stats, but focused on CVEs only.
But in fact, its main difference is on the set of packages that we
consider: pkg-stats considers all packages, while cve-checker uses
"make show-info" to only consider packages enabled in the current
configuration.
So, this commit introduces a -c option to pkg-stats, to tell pkg-stats
to generate its output based on the list of configured packages. -c is
mutually exclusive with the -p option (explicit list of packages) and
-n option (a number of packages, picked randomly).
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Thomas Petazzoni [Thu, 5 Nov 2020 16:30:19 +0000 (17:30 +0100)]
support/scripts/pkg-stats: allow to run script outside of the top-level directory
Currently, pkg-stats expects being executed from Buildroot's top-level
source directory. As we are going to extend pkg-stats to cover only
the packages available in the current configuration, it makes sense to
be able to run it from the output directory, which can be anywhere
compared to Buildroot's top-level directory.
This commit adjusts pkg-stats to this, by inferring all Buildroot
paths based on the location of the pkg-stats script itself.
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Romain Naour [Sun, 8 Nov 2020 17:51:05 +0000 (18:51 +0100)]
package/mesa3d: Add xcb-fixes to loader when using x11 and dri3
"loader_dr3_helper.c uses xcb_xfixes_create_region() that requires dep_xcb_xfixes to link.
This is dependent on with_platform_x11 and with_dri3.
But the source meson file does not set this up dependent on with_dri3."
i686-buildroot-linux-gnu/bin/ld: src/loader/libloader_dri3_helper.a(loader_dri3_helper.c.o): in function `loader_dri3_swap_buffers_msc':
loader_dri3_helper.c:(.text.loader_dri3_swap_buffers_msc+0x33e): undefined reference to `xcb_xfixes_create_region'
Fixes:
https://gitlab.com/buildroot.org/buildroot/-/jobs/
830981830
Signed-off-by: Romain Naour <romain.naour@gmail.com>
Cc: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Sun, 12 Apr 2020 12:21:07 +0000 (14:21 +0200)]
package/libnetfilter_conntrack: add libmnl to Libs.Private
This will fix a static build failure with dnsmasq on latest
libnetfilter_conntrack
Fixes:
- http://autobuild.buildroot.org/results/
3fdc2cba20162eb86eaa5c49a056fb40fb18a392
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Tested-by: Baruch Siach <baruch@tkos.co.il>
[Peter: adjust upstream status as pointed out by Baruch]
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Romain Naour [Sun, 8 Nov 2020 20:53:44 +0000 (21:53 +0100)]
support/testing/tests/init/test_systemd: update to BR2_PACKAGE_SYSTEMD_JOURNAL_REMOTE
The commit [1] moved systemd-journal-gatewayd into systemd-journal-remote
option. Update to BR2_PACKAGE_SYSTEMD_JOURNAL_REMOTE in the testsuite
when BR2_PACKAGE_SYSTEMD_JOURNAL_GATEWAY is used.
Fixes:
https://gitlab.com/buildroot.org/buildroot/-/jobs/
830981805
https://gitlab.com/buildroot.org/buildroot/-/jobs/
830981811
[1]
e46fe9a6f2b7cef9789f5172332067cac5ff03bd
Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Wed, 11 Nov 2020 10:11:52 +0000 (11:11 +0100)]
package/slirp: add libglib2 mandatory dependency
slirp depends on libglib2, don't update xen as it already depends on it
Fixes:
- http://autobuild.buildroot.org/results/
0b9cff1bc650876a6fff6102b2cb31dcdf4c5e8f
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Wed, 11 Nov 2020 10:11:51 +0000 (11:11 +0100)]
package/slirp: switch official tarball
Other "official" tarballs don't ship .tarball-version resulting in a build
failure: https://gitlab.freedesktop.org/slirp/libslirp/-/issues/24
Fixes:
- http://autobuild.buildroot.org/results/
0b9cff1bc650876a6fff6102b2cb31dcdf4c5e8f
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Alexander Egorenkov [Wed, 11 Nov 2020 09:21:20 +0000 (10:21 +0100)]
package/s390-tools: fix zkey build
Linking of libekmfweb fails when zkey-ekmfweb.so build is enabled.
Fixes:
- http://autobuild.buildroot.net/results/
d41bca3be35d1a48f962be03920f2b81c3e9bb9f
Signed-off-by: Alexander Egorenkov <egorenar@linux.ibm.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Romain Naour [Tue, 10 Nov 2020 22:29:01 +0000 (23:29 +0100)]
support/testing: update to the new text representation of capabilities
Since libcap 2.41, the text representation of capabilities now use
the '=' instead of '+' [1].
This break our capabilities tests since we still use the old
representation.
[1] https://git.kernel.org/pub/scm/linux/kernel/git/morgan/libcap.git/commit/?id=
177cd418031b1acfcf73fe3b1af9f3279828681c
Fixes:
https://gitlab.com/buildroot.org/buildroot/-/jobs/
830981737
Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Romain Naour [Tue, 10 Nov 2020 22:27:01 +0000 (23:27 +0100)]
support/testing/test_hardening: add missing Kconfig symbol
BR2_TOOLCHAIN_EXTERNAL_CUSTOM=y is needed to use the
custom external toolchain x86-i686--glibc--bleeding-edge-2018.11-1.tar.bz2
Otherwise the symbol BR2_TOOLCHAIN_EXTERNAL_URL is lost.
Fixes:
https://gitlab.com/buildroot.org/buildroot/-/jobs/
830981738
https://gitlab.com/buildroot.org/buildroot/-/jobs/
830981739
https://gitlab.com/buildroot.org/buildroot/-/jobs/
830981740
https://gitlab.com/buildroot.org/buildroot/-/jobs/
830981741
https://gitlab.com/buildroot.org/buildroot/-/jobs/
830981742
https://gitlab.com/buildroot.org/buildroot/-/jobs/
830981743
Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Romain Naour [Mon, 9 Nov 2020 23:07:44 +0000 (00:07 +0100)]
package/systemd: fix update-done service for read-only filesystem
Backport an upstream patch to fix a regresion introduced in
246.5 by [1].
[1] https://github.com/systemd/systemd-stable/commit/
8019995e9af9c6d7b5985198cedccd24eda3e26e
Fixes:
https://gitlab.com/buildroot.org/buildroot/-/jobs/
830981805
Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Tue, 10 Nov 2020 17:41:14 +0000 (18:41 +0100)]
package/guile: disable jit for host and target gcc < 5
jit also raises build failures with host gcc 4.9.2 and x86_64 so disable
it if host gcc < 5 and update workaround added by commit
d8dad069c861468b17397f01875b95e7375891d7 to apply it for all
architectures and not only ARM
Fixes:
- http://autobuild.buildroot.org/results/c2c/
c2c31ff5c206bd3791d64d953dc1574546644b05
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Tue, 10 Nov 2020 20:17:07 +0000 (21:17 +0100)]
package/bitcoin: set BITCOIN_GENBUILD_NO_GIT
Set BITCOIN_GENBUILD_NO_GIT to not include (Buildroot) git version info in
build, which is available since version 0.15.0 and
https://github.com/bitcoin/bitcoin/commit/
e98e3dde6a976a2c8f266ee963d6931fd4b37262
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Tue, 10 Nov 2020 20:52:42 +0000 (21:52 +0100)]
package/s390-tools: fix license
Fix license file name in hash file
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Reviewed-by: Alexander Egorenkov <egorenar@linux.ibm.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Romain Naour [Tue, 10 Nov 2020 20:56:51 +0000 (21:56 +0100)]
support/testing/test_syslinux: add missing Kconfig symbol
BR2_TOOLCHAIN_EXTERNAL_CUSTOM=y is needed to use the
custom external toolchain x86-i686--glibc--bleeding-edge-2018.11-1.tar.bz2
Otherwise the symbol BR2_TOOLCHAIN_EXTERNAL_URL is lost.
Fixes:
https://gitlab.com/buildroot.org/buildroot/-/jobs/
830981734
https://gitlab.com/buildroot.org/buildroot/-/jobs/
830981733
Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Adrian Perez de Castro [Tue, 10 Nov 2020 09:02:04 +0000 (11:02 +0200)]
package/wpewebkit: add optional systemd dependency
WPE WebKit 2.30.0 added an USE_SYSTEMD buil option, which needs to
be set to avoid CMake from trying to use systemd unconditionally.
Based on a similar patch for package/webkitgtk by Peter Seiderer.
Signed-off-by: Adrian Perez de Castro <aperez@igalia.com>
Reviewed-by: Peter Seiderer <ps.report@gmx.net>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Angelo Compagnucci [Sun, 8 Nov 2020 16:33:49 +0000 (17:33 +0100)]
package/cups-filters: fix daemon path for cups service
Fix a typo in service location, the right location is indeed /usr/sbin.
Signed-off-by: Angelo Compagnucci <angelo@amarulasolutions.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Peter Seiderer [Mon, 9 Nov 2020 23:13:56 +0000 (00:13 +0100)]
package/webkitgtk: add optional systemd dependency
- systemd support/USE_SYSTEMD option was added since 2.30.0,
so add an optional dependency
Fixes:
-- Could NOT find Systemd (missing: Systemd_LIBRARY Systemd_INCLUDE_DIR)
CMake Error at Source/cmake/OptionsGTK.cmake:425 (message):
libsystemd is needed for USE_SYSTEMD
Reported-by: C Larbi <pkl2000us@gmail.com>
Signed-off-by: Peter Seiderer <ps.report@gmx.net>
Acked-by: Adrian Perez de Castro <aperez@igalia.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Peter Seiderer [Mon, 9 Nov 2020 23:13:55 +0000 (00:13 +0100)]
package/webkitgtk: fix opengl configure option
- option was renamed from ENABLE_OPENGL to ENABLE_GRAPHICS_CONTEXT_GL
since 2.30.0
Signed-off-by: Peter Seiderer <ps.report@gmx.net>
Acked-by: Adrian Perez de Castro <aperez@igalia.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Romain Naour [Sun, 8 Nov 2020 15:27:36 +0000 (16:27 +0100)]
configs/qemu_arm_vexpress_defconfig: increase SD card image size to 64MiB
Since Qemu 5.1, this defconfig doesn't boot due to the to small SD card image size (60MB).
qemu-system-arm: sd_init failed: Invalid SD card size: 60 MiB
SD card size has to be a power of 2, e.g. 64 MiB.
You can resize disk images with 'qemu-img resize <imagefile> <new-size>'
(note that this will lose data if you make the image smaller than it currently is).
qemu-system-arm: sd_init failed
From [1]:
"While the possibility to use small SD card images has been seen as
a feature, it became a bug with CVE-2020-13253, where the guest is
able to do OOB read/write accesses past the image size end."
The qemu_arm_vexpress_tz_defconfig doesn't trigger such issue since
it doesn't use the same filesystem support (i.e doesn't use
-drive file=output/images/rootfs.ext2,if=sd,format=raw).
Fixes:
https://gitlab.com/kubu93/buildroot/-/jobs/
766482935
[1] https://git.qemu.org/?p=qemu.git;a=commitdiff;h=
a9bcedd15a5834ca9ae6c3a97933e85ac7edbd36
Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Romain Naour [Sun, 8 Nov 2020 15:27:35 +0000 (16:27 +0100)]
Revert "configs/qemu_arm_versatile_defconfig: increase SD card image size to 64MiB"
qemu_arm_versatile doesn't use SD card interface but SCSI, so there is no
need to increase the image size.
The change was for qemu_arm_vexpress_defconfig instead (notice the
name of the defconfig used in gitlab).
This reverts commit
cb62a8e0a2b88b6c1b3ffe74e9eb370bf686fa62.
Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Sat, 7 Nov 2020 18:52:56 +0000 (19:52 +0100)]
package/xen: add slirp dependency for tools
Build of xen tools fails if slirp is built before xen because xen is not
compatible with spice slirp which does not provide libslirp.h:
/home/buildroot/autobuild/instance-2/output-1/build/xen-4.13.0/tools/qemu-xen/net/slirp.c:40:10: fatal error: libslirp.h: No such file or directory
#include <libslirp.h>
^~~~~~~~~~~~
Indeed, xen prefers a system-provided slirp over its internal one
So add slirp as a mandatory dependency (now that we switched to the up
to date https://gitlab.freedesktop.org/slirp/libslirp)
This build failure is raised since, at least, version 4.13.0
Fixes:
- http://autobuild.buildroot.org/results/
b80b33ed558518f7bbb0a3c8586bf2d0b8acc36f
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Reviewed-by: Alistair Francis <alistair.francis@wdc.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Sat, 7 Nov 2020 18:52:55 +0000 (19:52 +0100)]
package/slirp: security bump to version 4.3.1
- Use an up to date fork (spice slirp is archived and has not been
updated since 2012)
- Add COPYRIGHT as the license file
- BSD-4-Clause has been replaced by BSD-3-Clause since
https://gitlab.freedesktop.org/slirp/libslirp/-/commit/
3bac39137a652b24b89d5b9e2a39600619fbe1d3
https://gitlab.freedesktop.org/slirp/libslirp/-/commit/
f9f6e69c4e1d9a43af30bfe791b31789ffa04954
- Add hash file
- Switch to meson-package
- Fix multiple security vulnerabilities: CVE-2014-3640, CVE-2017-11434,
CVE-2019-6778, CVE-2019-9824, CVE-2019-14378 and CVE-2020-10756
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Reviewed-by: Alistair Francis <alistair.francis@wdc.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Mon, 9 Nov 2020 22:30:06 +0000 (23:30 +0100)]
package/domoticz: fix build with python 3.9
Fixes:
- http://autobuild.buildroot.org/results/
994c95b2e3635c30e4a575fcf707eaa57b89e198
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Peter Korsgaard [Tue, 10 Nov 2020 08:50:14 +0000 (09:50 +0100)]
package/gstreamer1/gst1-plugins-bad: explicitly enable _GNU_SOURCE for festival/glibc 2.18
festival fails to built with glibc 2.18 due to fopen and the h_addr field in
struct hostent:
../gst/festival/gstfestival.c: In function 'gst_festival_chain':
../gst/festival/gstfestival.c:273:3: warning: implicit declaration of function 'fdopen' [-Wimplicit-function-declaration]
fd = fdopen (f, "wb");
^
../gst/festival/gstfestival.c:273:6: warning: assignment makes pointer from integer without a cast [enabled by default]
fd = fdopen (f, "wb");
^
../gst/festival/gstfestival.c: In function 'festival_socket_open':
../gst/festival/gstfestival.c:367:45: error: 'struct hostent' has no member named 'h_addr'
memmove (&serv_addr.sin_addr, serverhost->h_addr, serverhost->h_length);
^
Both of which are hidden behind _GNU_SOURCE in glibc 2.18, so enable that to
fix this build issue.
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Peter Korsgaard [Tue, 10 Nov 2020 08:46:00 +0000 (09:46 +0100)]
package/gstreamer1/gst1-plugins-bad: explicitly enable C99 for dvbsubenc/gcc 4.8
dvbsubenc fails to build with gcc 4.8 due to restrict keyword and for
loop declarations:
../gst/dvbsubenc/libimagequant/blur.c:10:46: error: expected ';', ',' or ')' before 'src'
transposing_1d_blur (unsigned char *restrict src, unsigned char *restrict dst,
^
../gst/dvbsubenc/libimagequant/blur.c: In function 'liq_min3':
../gst/dvbsubenc/libimagequant/blur.c:101:5: error: 'for' loop initial declarations are only allowed in C99 mode
for (unsigned int i = 0; i < width - 1; i++) {
^
../gst/dvbsubenc/libimagequant/blur.c:101:5: note: use option -std=c99 or -std=gnu99 to compile your code
Fixes:
- http://autobuild.buildroot.org/results/
183e876d63340b5c204f47a4653cbfebb0523277
Both of which are C99 features, so explicitly enable C99 support to fix
that.
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Angelo Compagnucci [Mon, 9 Nov 2020 21:33:04 +0000 (22:33 +0100)]
linux: bump CIP RT kernel to version 4.19.152-cip37-rt16
This patch bumps Linux CIP RT to version 4.19.152-cip37-rt16
Signed-off-by: Angelo Compagnucci <angelo@amarulasolutions.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Angelo Compagnucci [Mon, 9 Nov 2020 21:33:03 +0000 (22:33 +0100)]
linux: bump CIP kernel to version 4.19.152-cip37
This patch bumps Linux CIP to version 4.19.152-cip37
Signed-off-by: Angelo Compagnucci <angelo@amarulasolutions.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Peter Korsgaard [Mon, 9 Nov 2020 20:56:08 +0000 (21:56 +0100)]
{linux, linux-headers}: bump 4.{4, 9, 14, 19}.x / 5.{4, 8, 9}.x series
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Mon, 9 Nov 2020 20:40:40 +0000 (21:40 +0100)]
package/bitcoin: security bump to version 0.20.1
- openssl is not a dependency since version 0.20.0 and
https://github.com/bitcoin/bitcoin/commit/
8983ee3e6dd8ab658bd2caf97c326cc53ea50818
- boost chrono is not needed since version 0.20.0 and
https://github.com/bitcoin/bitcoin/commit/
bd37f2bc26158f85ef1ab73b9ca1fc0da8ea562a
- Update hash of COPYING (update in year:
https://github.com/bitcoin/bitcoin/commit/
8dc9aa90c3c7990dd5b491937ddc0e39bc929d1c)
- Update indentation in hash file (two spaces)
- Tag as a security bump as having an up to date bitcoin is important:
https://patchwork.ozlabs.org/project/buildroot/patch/
20200202085526.35742-1-james.hilliard1@gmail.com
https://github.com/bitcoin/bitcoin/blob/master/doc/release-notes/release-notes-0.20.1.md
https://github.com/bitcoin/bitcoin/blob/master/doc/release-notes/release-notes-0.20.0.md
https://github.com/bitcoin/bitcoin/blob/master/doc/release-notes/release-notes-0.19.1.md
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Sat, 7 Nov 2020 14:03:03 +0000 (15:03 +0100)]
package/libiqrf: add license file
Add license file and, while at it, update indentation to two spaces
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Peter Korsgaard [Mon, 9 Nov 2020 20:54:10 +0000 (21:54 +0100)]
Revert "linux: bump CIP kernel to version 4.19.152-cip37"
This reverts commit
b737c6b3513901f736299d842a872bf78073983d. This was not
supposed to be committed, as the patch did not update linux.hash.
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Sun, 8 Nov 2020 17:28:22 +0000 (18:28 +0100)]
package/python-m2crypto: fix build on arm and mips
Fix build failure on arm and mips (perhaps also other)
Fixes:
- http://autobuild.buildroot.org/results/
7f63e6a2d8681cc3408f344556afd5dd16eb7368
- http://autobuild.buildroot.org/results/
d115a082418321e7dc4715c635f94b30b3cad387
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Romain Naour [Sun, 8 Nov 2020 17:15:00 +0000 (18:15 +0100)]
board/qemu/ppc-mpc8544ds: apply Debian patch fixing wrong mcpu
When building the linux kernel for PPC_85xx cpus with GCC 8, the build fail with:
powerpc-e500v2-linux-gnuspe-gcc: error: unrecognized argument in option '-mcpu=powerpc'
powerpc-e500v2-linux-gnuspe-gcc: note: valid arguments to '-mcpu=' are: 8540 8548 native
"GCC started treating "PowerPC" and "PowerPC SPE" as two different architectures and
that's the reason for the reduced -mcpu list." [1]
As suggested in the crosstool-ng issue [1], apply the Debian patch to avoid
-mcpu=powerpc or -mcpu=powerpc64.
Fixes:
https://gitlab.com/buildroot.org/buildroot/-/jobs/
830981654
[1] https://github.com/crosstool-ng/crosstool-ng/issues/1152
[2] https://salsa.debian.org/kernel-team/linux/-/blob/buster/debian/patches/bugfix/powerpc/powerpc-fix-mcpu-options-for-spe-only-compiler.patch
Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Antoine Tenart [Mon, 9 Nov 2020 16:51:25 +0000 (17:51 +0100)]
DEVELOPERS: remove myself for wf111
I haven't looked at that package and touched it for 6 years now, and
clearly others have taken care of it when looking at the Git history.
Signed-off-by: Antoine Tenart <atenart@kernel.org>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Antoine Tenart [Mon, 9 Nov 2020 16:51:24 +0000 (17:51 +0100)]
DEVELOPERS: update Antoine Tenart's email address
Signed-off-by: Antoine Tenart <atenart@kernel.org>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Sun, 8 Nov 2020 23:09:32 +0000 (00:09 +0100)]
package/glmark2: fix wayland build
wayland-protocols is needed since
https://github.com/glmark2/glmark2/commit/
58763e2c13db39ad7c1a994c261146154e4f0afa
Fixes:
- http://autobuild.buildroot.org/results/
6106f07602c014897331daac3de01ac4a74e2016
- http://autobuild.buildroot.org/results/
b8d43fad291022cbc6e43988fe6bec14f594591a
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Romain Naour [Sun, 8 Nov 2020 23:00:09 +0000 (00:00 +0100)]
support/testing: TestInitSystemSystemdRwIfupdown test expect a RW rootfs
When running the TestInitSystemSystemdRwIfupdown test, the rootfs must
be in read-write mode. The commit log [1] introducing systemd tests say
so:
"basic systemd, read-write, network w/ ifupdown"
With systemd 246.5, the service systemd-update-done return an error code
when it can't write on the filesystem (/etc)
[1]
117835d5fcd508f301d62dd08ee658c1982c7fa7
[2] https://github.com/systemd/systemd/commit/
8019995e9af9c6d7b5985198cedccd24eda3e26e
Fixes:
https://gitlab.com/buildroot.org/buildroot/-/jobs/
830981813
Signed-off-by: Romain Naour <romain.naour@gmail.com>
Cc: Yann E. MORIN <yann.morin.1998@free.fr>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Angelo Compagnucci [Sun, 8 Nov 2020 21:33:13 +0000 (22:33 +0100)]
linux: fix linux CIP description typo
Version is 4.19 and not 4.4.
Signed-off-by: Angelo Compagnucci <angelo@amarulasolutions.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Angelo Compagnucci [Sun, 8 Nov 2020 21:29:40 +0000 (22:29 +0100)]
linux: bump CIP kernel to version 4.19.152-cip37
This patch bumps Linux CIP to version 4.19.152-cip37
Signed-off-by: Angelo Compagnucci <angelo@amarulasolutions.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Christian Stewart [Mon, 9 Nov 2020 09:09:12 +0000 (01:09 -0800)]
package/go: bump to 1.15.4
Bugfix release. From the release notes:
go1.15.4 (released 2020/11/05) includes fixes to cgo, the compiler, linker,
runtime, and the compress/flate, net/http, reflect, and time packages.
Signed-off-by: Christian Stewart <christian@paral.in>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Baruch Siach [Mon, 9 Nov 2020 16:18:08 +0000 (18:18 +0200)]
package/stress-ng: disable libbsd on static build
Static link with libbsd fails because of multiple definition of the
strlcpy symbol. uClibc optionally provides these symbols.
Add make options that disable all libbsd tests when linking statically.
Fixes:
http://autobuild.buildroot.net/results/
2c77271b33c9d0e9a39cced2eda6d0df0d6b8124/
http://autobuild.buildroot.net/results/
2f98c5d9ca907dd62b30bedfe4e52b014bb3e8d1/
http://autobuild.buildroot.net/results/
51c4c065b93a6d11f6b4583f80f932481518905a/
Cc: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Romain Naour [Sat, 7 Nov 2020 22:55:35 +0000 (23:55 +0100)]
package/elf2flt: add support for binutils >= 2.34
Various bfd section macros and functions like bfd_section_size() have been
modified starting with binutils >= 2.34.
Add a patch to handle this API change.
Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Sat, 7 Nov 2020 17:43:37 +0000 (18:43 +0100)]
package/xen: disable go tools
go tools are enabled by default since version 4.14.0 and
https://github.com/xen-project/xen/commit/
1e13ea98bbb8369d065af4666c45c26dab5240d5
Disable them to avoid the following build failure on arm or aarch64
(when host-go is built before xen):
aarch64-none-linux-gnu-gcc: error: unrecognized command line option '-m64'
Fixes:
- http://autobuild.buildroot.org/results/
08948e4c4a88fbf09cae524949e5b656882a6e9a
- http://autobuild.buildroot.org/results/
d966585c931ca4a4ae6a854a21e07eec4c277a02
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Sat, 7 Nov 2020 17:05:59 +0000 (18:05 +0100)]
package/bitcoin: drop boost program-options
boost program-options is not needed since version 0.17.0 and
https://github.com/bitcoin/bitcoin/commit/
f447a0a7079619f0d650084df192781cca9fd826
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Bernd Kuhls [Sat, 7 Nov 2020 16:42:43 +0000 (17:42 +0100)]
package/{mesa3d, mesa3d-headers}: bump version to 20.2.2
Release notes of this bugfix release::
https://lists.freedesktop.org/archives/mesa-announce/2020-November/000604.html
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Bernd Kuhls [Sat, 7 Nov 2020 16:38:44 +0000 (17:38 +0100)]
package/tinyproxy: add hash for license file
Add hash for license file and update indentation (two spaces).
Fixes:
http://autobuild.buildroot.net/results/b07/
b07052de34ca24d5c62f6facec2ced5e092d26e2/
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Sat, 7 Nov 2020 16:45:47 +0000 (17:45 +0100)]
package/guile: renumber patch
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Sat, 7 Nov 2020 16:01:22 +0000 (17:01 +0100)]
package/guile: disable jit on ARM with gcc < 5
jit is enabled by default since version 3.0.0 on x86-64, i686, ARMv7 and
AArch64 targets however it raises the following build failure on ARM
with gcc 4.8:
jit.c:232:1: error: initializer element is not constant
static const jit_gpr_t THREAD = JIT_V0;
^
This build failure was also reported with ARM on gcc 4.9:
https://www.mail-archive.com/guile-user@gnu.org/msg11497.html
So just disable jit with ARM and gcc < 5
Fixes:
- http://autobuild.buildroot.org/results/
ba051bb00a6cad3cfd5ffeb197de20ea0eaef33e
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Sat, 7 Nov 2020 14:06:26 +0000 (15:06 +0100)]
package/fbtft: add license file
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Bernd Kuhls [Sun, 8 Nov 2020 17:11:42 +0000 (18:11 +0100)]
package/libexif: add security fix for CVE-2020-0452
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Bernd Kuhls [Sun, 8 Nov 2020 17:11:41 +0000 (18:11 +0100)]
package/libexif: add security fix for CVE-2020-0198
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Sat, 7 Nov 2020 15:55:40 +0000 (16:55 +0100)]
package/davfs2: fix indent
Fix the following check-package warning added by commit
a2b98a6add92e38dbcd4ca9fda25454a38c719e3:
package/davfs2/davfs2.mk:22: expected indent with tabs
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Fri, 6 Nov 2020 18:02:54 +0000 (19:02 +0100)]
package/cryptsetup: break circular dependency
Build fails because of the following circular dependency:
cryptsetup -> util-linux -> udev -> systemd -> cryptsetup
which results in the following build failure:
checking uuid/uuid.h usability... no
checking uuid/uuid.h presence... no
checking for uuid/uuid.h... no
configure: error: You need the uuid library.
To break it, apply the same ugly workaround that was applied for
libglib2 until a better solution is found:
https://patchwork.ozlabs.org/project/buildroot/patch/
20201101150619.
1709959-1-fontaine.fabrice@gmail.com/
Fixes:
- http://autobuild.buildroot.org/results/
a1a020a3e1c2383a030fcd73eae7c0fe5f82b022
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Sven Klomp [Thu, 5 Nov 2020 13:11:49 +0000 (14:11 +0100)]
package/davfs2: add davfs2 user and group
mount.davfs expects the availability of the user and group davfs2.
Signed-off-by: Sven Klomp <mail@klomp.eu>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Fabrice Fontaine [Fri, 6 Nov 2020 21:49:36 +0000 (22:49 +0100)]
package/lzlib: add license file
Add lzlib.c as the license file and, while at it, update indentation to
two spaces
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Fabrice Fontaine [Fri, 6 Nov 2020 17:52:49 +0000 (18:52 +0100)]
package/darkhttpd: add license file
Add license file and, while at it, update indentation to two spaces
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Fabio Estevam [Fri, 6 Nov 2020 13:36:34 +0000 (10:36 -0300)]
configs/mx6udoo: select host-openssl for the Linux kernel build
Select BR2_LINUX_KERNEL_NEEDS_HOST_OPENSSL=y to fix the following
build error:
scripts/extract-cert.c:21:25: fatal error: openssl/bio.h: No such file or directory
#include <openssl/bio.h>
Fixes:
https://gitlab.com/buildroot.org/buildroot/-/jobs/
831421064
Signed-off-by: Fabio Estevam <festevam@gmail.com>
Reviewed-by: Marcin Niestroj <m.niestroj@grinn-global.com>
Tested-by: Marcin Niestroj <m.niestroj@grinn-global.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Fabio Estevam [Fri, 6 Nov 2020 13:36:33 +0000 (10:36 -0300)]
configs/mx6sx_udoo_neo: select host-openssl for the Linux kernel build
Select BR2_LINUX_KERNEL_NEEDS_HOST_OPENSSL=y to fix the following
build error:
scripts/extract-cert.c:21:25: fatal error: openssl/bio.h: No such file or directory
#include <openssl/bio.h>
Fixes:
https://gitlab.com/buildroot.org/buildroot/-/jobs/
831421063
Signed-off-by: Fabio Estevam <festevam@gmail.com>
Reviewed-by: Marcin Niestroj <m.niestroj@grinn-global.com>
Tested-by: Marcin Niestroj <m.niestroj@grinn-global.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Bernd Kuhls [Fri, 6 Nov 2020 21:49:32 +0000 (22:49 +0100)]
package/freetype: security bump version to 2.10.4
Fixes CVE-2020-15999, https://www.freetype.org/index.html#news
"This is an emergency release, fixing a severe vulnerability in embedded
PNG bitmap handling [...].
All users should update immediately."
Removed md5 hash.
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Bernd Kuhls [Fri, 6 Nov 2020 21:49:31 +0000 (22:49 +0100)]
package/ghostscript: fix build with freetype >= 2.10.3
This patch is needed to fix the build with freetype >= 2.10.3.
https://www.freetype.org/index.html#news
"A warning for distribution maintainers: Version 2.10.3 and later may
break the build of ghostscript, due to ghostscript's use of a with-
drawn macro that wasn't intended for external usage."
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Fabrice Fontaine [Fri, 6 Nov 2020 21:44:03 +0000 (22:44 +0100)]
package/kmscube: add license file
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Marcin Niestroj [Fri, 6 Nov 2020 18:27:01 +0000 (19:27 +0100)]
configs/rock_pi_n8: use Python 3.x for U-Boot build
New U-Boot versions (such as 2020.07 being used) need Python 3.x for
pylibfdt.
Fixes:
- https://gitlab.com/buildroot.org/buildroot/-/jobs/
831421210
Signed-off-by: Marcin Niestroj <m.niestroj@grinn-global.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Marcin Niestroj [Fri, 6 Nov 2020 18:27:00 +0000 (19:27 +0100)]
configs/orangepi_pc: use Python 3.x for U-Boot build
New U-Boot versions (such as 2020.07 being used) need Python 3.x for
pylibfdt.
Fixes:
- https://gitlab.com/buildroot.org/buildroot/-/jobs/
831421100
Signed-off-by: Marcin Niestroj <m.niestroj@grinn-global.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Marcin Niestroj [Fri, 6 Nov 2020 18:26:59 +0000 (19:26 +0100)]
configs/orangepi_zero_plus: use Python 3.x for U-Boot build
New U-Boot versions (such as 2020.10 being used) need Python 3.x for
pylibfdt.
Fixes:
- https://gitlab.com/buildroot.org/buildroot/-/jobs/
831421115
Signed-off-by: Marcin Niestroj <m.niestroj@grinn-global.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Yann E. MORIN [Fri, 6 Nov 2020 18:26:41 +0000 (19:26 +0100)]
Revert "Makefile: exclude BR2_DL_DIR from savedefconfig"
Although BR2_DL_DIR is indeed a site-local setting, which does not
actually define the target system, we've had it in the tree for a
long time now, and people have been depending on it for a variety
of use-cases.
Furthermore, BR2_DL_DIR is far from the only such site-local setting,
BR2_CCACHE_DIR springs to mind, and in the less-obvious category, we
can also find BR2_JLEVEL, but also BR2_WGET, BR2_SVN, BR2_GIT et al.
as they may be tweaked to set the timeout, number of retries or so on
to work around stupid proxies. But of course, the most local site-local
setting is probably BR2_PACKAGE_OVERRIDE_FILE, with its default value
being explicitly just 'local.mk'.
Ideally, we would like to have a clear separation between the
configuration that actually defines the target system on one hand,
and the site-local settings that drive and control how the build is
performed, on the other hand. This is by far a much bigger endeavour
than just dropping BR2_DL_DIR from the saved defconfig.
This reverts commit
36edacce9c2c3b90f9bb11a5d2208e8edf7bbe63 (adapted
to keep the fix from
1a7873ec986c817fdd22cc2d9096d9482fee4381).
Closes: #13291
Note: thanks to Thomas; some phrasing above was borrowed from a
discussion with him.
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Cc: Lance Fredrickson <lancethepants@gmail.com>
Cc: Sven Oliver Moll <buildroot@svol.li>
Cc: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Cc: Peter Korsgaard <peter@korsgaard.com>
Cc: Adam Duskett <aduskett@gmail.com>
Fabrice Fontaine [Thu, 5 Nov 2020 17:46:23 +0000 (18:46 +0100)]
package/libsigrokdecode: fix build with python 3.9
This will fix the following build failure with python 3.9 and
sigrok-cli:
/srv/storage/autobuild/run/instance-1/output-1/host/opt/ext-toolchain/bin/../lib/gcc/mips64el-buildroot-linux-uclibc/5.5.0/../../../../mips64el-buildroot-linux-uclibc/bin/ld: /srv/storage/autobuild/run/instance-1/output-1/host/bin/../mips64el-buildroot-linux-uclibc/sysroot/usr/lib/libsigrokdecode.so: undefined reference to `PyList_Insert'
Fixes:
- http://autobuild.buildroot.org/results/
cc6447b926f8223c68d0086428d29a037b18252d
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Thu, 5 Nov 2020 17:18:50 +0000 (18:18 +0100)]
package/openntpd: fix build with gcc 10
Fixes:
- http://autobuild.buildroot.org/results/
4a7e6b707d061f5f7f5e00f0054f02a0f7fcb452
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Thomas Petazzoni [Thu, 5 Nov 2020 16:47:35 +0000 (17:47 +0100)]
support/testing/tests: fix flake8 warnings
Fixes the following flake8 warnings:
support/testing/tests/core/test_selinux.py:21:1: E302 expected 2 blank lines, found 1
support/testing/tests/core/test_selinux.py:38:1: E302 expected 2 blank lines, found 1
support/testing/tests/core/test_selinux.py:51:1: E302 expected 2 blank lines, found 1
support/testing/tests/core/test_selinux.py:62:1: E302 expected 2 blank lines, found 1
support/testing/tests/core/test_selinux.py:65:14: E127 continuation line over-indented for visual indent
support/testing/tests/init/test_systemd_selinux.py:53:1: E302 expected 2 blank lines, found 1
support/testing/tests/init/test_systemd_selinux.py:64:1: E302 expected 2 blank lines, found 1
Interestingly, the "continuation line over-indented for visual indent"
shows up only once, while the same pattern is there at multiple places
in the file. We fix all places with that over-indentation pattern.
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Bernd Kuhls [Thu, 5 Nov 2020 19:02:06 +0000 (20:02 +0100)]
package/jsoncpp: security bump version to 1.9.4
Release notes of this "Security and build system fixes" release:
https://github.com/open-source-parsers/jsoncpp/releases/tag/1.9.4
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Thu, 5 Nov 2020 07:47:39 +0000 (08:47 +0100)]
package/modem-manager: fix build without xsltproc
Commit
8efb52c1a17210dc79cfb61f56a71ffb760ccbe9 added a libxslt
dependency presumably to manage
https://github.com/freedesktop/ModemManager/commit/
bbd39a457ce2949dd167f9c2e01eecf6a9e14716
However, this is wrong and build will fail on:
checking for xsltproc... no
configure: error: Please install xsltproc before configuring.
xsltproc is used to generate ModemManager-names.h since, at least,
version 0.7.990 and
https://github.com/freedesktop/ModemManager/commit/
365b906a3e1bda05af10f92451a6b6ae60f8b879
However, this file is already available in the official tarball so drop
this unneeded dependency and set ac_cv_prog_XSLTPROC_CHECK to yes
Fixes:
- http://autobuild.buildroot.org/results/
edc755b874ea43d1c009ad76c28f05e18519138e
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Thu, 5 Nov 2020 06:36:04 +0000 (07:36 +0100)]
package/oniguruma: security bump to version 6.9.6
Drop patch (already in version)
Fixed many problems found by OSS-Fuzz
Fixed many problems found by Coverity
https://github.com/kkos/oniguruma/releases/tag/v6.9.6
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Peter Korsgaard [Wed, 4 Nov 2020 22:29:24 +0000 (23:29 +0100)]
Update for 2020.11-rc1
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Peter Korsgaard [Wed, 4 Nov 2020 22:22:03 +0000 (23:22 +0100)]
CHANGES: Update for 2020.11-rc1
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Petr Vorel [Wed, 4 Nov 2020 18:14:00 +0000 (19:14 +0100)]
package/feh: bump to version 3.5
Signed-off-by: Petr Vorel <petr.vorel@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>